GDPR and Data Protection

GDPR and Data Protection

Want to know more?

The EU’s General Data Protection Regulation (GDPR) and Regulation on Privacy and Electronic Communications (PECR) impose the greatest changes in data protection law for 20 years. We can help ensure sure your organisation will comply.

There are likely to be key areas which if tackled first will greatly reduce the risk. Our approach is based on assessing the greatest risks and targeting those by providing you with the documentation required to demonstrate compliance.

We defend organisations facing claims from individuals and investigations by the Information Commissioner’s Office. As a result we understand how to deal with the contentious aspects of data protection.

We Advise On:

data processing and data sharing agreements

data audit

data protection training

implementing data governance programmes

drafting data protection policies and privacy notices

direct marketing consent requirements

subject access requests

preventing and managing data breach

responding to the regulator

Our GDPR experience includes:

auditing and advising a professional institution on GDPR compliance

advising online retailers on the changes required to their websites and behavioural marketing

providing documentation for charities on how to treat donors and supporters’ data

implementing website terms, booking processes and sales training to leisure and tourism businesses to ensure their data capture is compliant

advising housing associations and registered providers on the implementation of privacy by design measures.